e988e3a303
storage: fix noop test
2024-08-27 15:16:18 +02:00
083432cbfe
test: add EnsureFileSizeStream test
2024-07-18 15:39:45 +02:00
aeddaa4566
apps: rework portBindings
...
ports is REST API input . Map of env var to the host port
portBinding is the database structure. Map of env var to host port, count, type etc
also, rename portCount -> count in various places to keep things consistent
2024-07-17 00:25:47 +02:00
620c49cf76
Fix signature of checkForPortBindingsConflict
2024-07-16 19:31:54 +02:00
ad4e0ba9aa
tests: fix storage test
2024-07-08 22:29:45 +02:00
7d8ba8d42c
tests: datalayout
2024-07-07 20:23:32 +02:00
bcf497b460
translation.js -> translations.js
...
kept confusing my why i can't find this file! this is in line
with the rest of our code
2024-07-05 12:45:27 +02:00
bf51a60986
change args of translation.translate
2024-07-05 12:42:33 +02:00
d34b102e52
mandatory2fa: fix workflow when using external LDAP
...
* Always allow the mandatory 2fa setting to be saved
* Show warning for user if they have no 2fa setup and if not external 2fa
* If they get locked out anyway, they have to use CLI tool
* redirect for mandatory 2fa only if not external 2fa as well
2024-06-12 12:26:40 +02:00
b570f2f77d
userdirectory: add eventlog entry
2024-06-12 10:52:10 +02:00
b4e7e394c3
split routes and model code into user-directory.js
2024-06-12 10:49:01 +02:00
692be297b3
app proxy: protect code accessing containerId
2024-06-10 11:23:29 +02:00
bba1922120
dockerproxy: fix test
2024-06-08 22:26:34 +02:00
556b9fe20c
test: fix updatechecker test
2024-06-03 19:34:22 +02:00
a677dc3981
Fixup crontab tests
2024-05-15 15:17:42 +02:00
b4e4f26361
Rework cpuShares into cpuQuota
...
cpuShares is the relative weight wrt other apps. This is used when
there is contention for CPU. If we want this, maybe we implement
a UI where we show all the apps and let the user re-order them.
As it stands, it is confusing.
cpuQuota is a more straightforward "hard limit" of the CPU% that you
want the app to consume.
Can be tested with : stress -c 8 -t 20s
2024-04-10 18:25:14 +02:00
6bd9391160
syslog: fix tests
2024-03-30 19:17:28 +01:00
4ee56782ba
move syslog.js to top level
2024-03-21 19:09:51 +01:00
dec7bc3ca3
Check for portBindings with range outside the db constraint for now
2024-02-29 15:20:17 +01:00
7455490074
Fix tests
2024-02-28 16:02:42 +01:00
18a680a85b
groups: only the local groups of a user can be set
2024-02-28 15:56:03 +01:00
e26f71b603
externalldap: cannot set members of external group
2024-02-28 15:56:03 +01:00
f98fe43843
test: add ldap group test
2024-02-28 14:25:19 +01:00
5927f397a3
translate port bindings after validation
2024-02-27 13:19:19 +01:00
6525504923
profile: store preferred language in the database
2024-02-26 13:30:35 +01:00
a6f078330f
shell: no need to promise scoping
2024-02-21 19:40:27 +01:00
cfd5c0f82b
shell: rewrite exec to use execFile
...
this also renames execFile to execArgs
2024-02-21 18:54:43 +01:00
2237d2bbb7
shell: remove usage of .spawn
2024-02-21 13:27:04 +01:00
c1bb4de6a3
reverseproxy: use async exec
2024-02-21 12:33:04 +01:00
9b94cf18d0
convert more execSync to async
2024-02-21 11:00:12 +01:00
3da3ccedcb
volumes: only wait for 5 seconds for mount status
...
mountpoint -q can never exit if the nfs mount disappears, for example
2024-02-20 21:38:57 +01:00
26eb739b46
shell: add options to exec
2024-02-20 21:11:09 +01:00
8a63f0368e
Fix parsing of displayName
...
Currently, we only have one field for the name. The first part is
first name. The rest is last name. Obviously, this won't work in all
cases but is the best we can do for the moment.
2024-02-06 16:53:03 +01:00
b923925a6c
better describe
2024-01-23 13:18:14 +01:00
61f5669d76
externalldap: no need to make REST API calls and start server
2024-01-23 13:16:40 +01:00
29a96e5df1
ldap test: more unbinding
2024-01-23 11:58:00 +01:00
d2c21627de
ldap: server.close has a callback after all
2024-01-23 10:47:09 +01:00
81e21effa4
test: clear cron jobs to make node exit
2024-01-23 10:24:48 +01:00
2401c9cee7
test: unbind ldap client
2024-01-23 10:12:29 +01:00
4f0bbcc73b
externaldap: 2fa validation for supported sources
...
a request to verify password to externaldap.js logic can come from
* cloudron app (via ldapserver.js)
* dashboard (via oidc.js) or proxy auth (proxyauth.js) or CLI (accesscontrol.js)
the only supported source is the 'cloudron' provider at this point
2024-01-22 21:35:19 +01:00
3220721f84
directoryserver: test all combinations of 2fa checks
...
directory server cannot know the source of the requesting client.
there are 3 sources - external app, cloudron app, cloudron dashboard.
the 2fa is requested by client by passing `+totpToken=xxx` . totpToken
is ignored if the user has no 2fa setup. If present, it is validated.
2024-01-22 13:14:29 +01:00
13b9bed48b
externalldap: when using cloudron source, disable local 2fa setup
2024-01-20 12:44:19 +01:00
c99c24b3bd
users: cannot update profile fields of external user
2024-01-20 11:23:35 +01:00
8bdcdd7810
groups: members cannot be set for external groups
2024-01-19 23:23:25 +01:00
a1217e52c8
group: cannot set name of ldap group
2024-01-19 22:28:48 +01:00
a8d37b917a
groups: remove unused addMember
2024-01-19 17:25:36 +01:00
4136272382
externalldap: add eventlog
2024-01-13 13:22:26 +01:00
4f9e43859c
directoryserver: comments can be provided in allowlist
2024-01-13 12:54:10 +01:00
5b7667fa4d
external ldap: ensure dashboard login does totp check
2024-01-08 11:55:35 +01:00
053f81a53e
externalldap: add tests
2024-01-07 22:04:22 +01:00
Girish Ramakrishnan